Report: Russian cybercriminals have stolen 1.2 billion usernames and passwords, 500 million email addresses

Written by Andre Yoskowitz @ 05 Aug 2014 8:34 User comments (2)

U.S.-based security firm Hold Security has claimed today that a group of Russian cybercriminals have been quietly stealing and accumulating the most Internet login credentials in the history of the world.

In total, 1.2 billion username and password combinations have been stolen, in addition to 500 million email addresses.

Hold Security founder Alex Holden says the data was stolen from 42,000 sites across the Web, with no specific agenda. "Hackers did not just target US companies, they targeted any website they could get, ranging from Fortune 500 companies to very small websites," Holden noted. "And most of these sites are still vulnerable."

If accurate, the thefts would make last year's Target security breach look like child's play, where about 60 million credit and debit card numbers were stolen over the course of a few months.

Holden says the Russian outfit is about a dozen young hackers who first bought stolen data off underground markets and then began working with another group to aim bigger. "There is a division of labor within the gang," Holden added. "Some are writing the programming, some are stealing the data. It's like you would imagine a small company; everyone is trying to make a living."

Source:
NYT

Tags: Hackers Russia Hold Security

<Lionsgate wins restraining order against six warez sites sharing 'Expendables 3' >Fox withdraws their gigantic bid for Time Warner

2 user comments

15.8.2014 20:56

Clam_Up

Send private message to this user

Junior Member

Two points:

1. Sites that demand passwords follow a specified template, i.e. your password must have 3 letters, a number and a symbol, are making hacking faster and easier, not slower and harder. Admins who think they're being trendy by forcing their members to follow clearly specified templates are not helping security at all.

2. The accounts of basic members are not the targets of hackers; at least not the sophisticated ones anyway. The accounts they're after are the ones worth accessing: the admin accounts. It makes no difference how the average Joe jumbles up their passwords. If the admin account isn't the most secure account on the site, forget security for everyone else.

26.8.2014 16:16

DarkJello

Send private message to this user

Senior Member

So a security site selling me identity theft protection is reporting my identity is at risk of being stolen. Any one not trying to make money off of me reporting this?

Comments have been disabled for this article.

	VLC hits milestone: over 5 billion downloads (16 Mar 2024 4:31) VLC Media Player, the versatile video-software powerhouse, has achieved a remarkable feat: it has been downloaded over 5 billion times. 2 user comments
	Sideloading apps to Android gets easier, as Google settles its lawsuit (19 Dec 2023 11:09) Google settled its lawsuit in September 2023, and one of the settlement terms was that the way applications are installed on Android from outside the Google Play Store must become simpler. In the future, installing APK files will be easier. 8 user comments
	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19) Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Neato, the robot vacuum company, ends its operations (02 May 2023 3:38) Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028. 5 user comments
	How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25) The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. .... 18 user comments

	GUIDE: Wi-Fi speeds are slow? Here are some tips Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues. 1 user comment
	HOWTO: Install Netflix App on rooted Android device 'This app is no longer compatible with your device. Contact the developers for more info.' If you are getting this message from Google Play when trying to install Netflix, then maybe this little guide can help you.
	What happens if you don't update Android? Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
	Windows 11: Check if TPM is enabled on your computer In this short guide we will look at how you can check the status of Trusted Platform Module (TPM) on your PC ahead of the coming launch of Windows 11.
	Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems. 1 user comment

Report: Russian cybercriminals have stolen 1.2 billion usernames and passwords, 500 million email addresses

2 user comments

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product. 1 user comment
	Samsung Jet Bot 80+ review - excellent robot vacuum cleaner We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months. 1 user comment